You have a route to the fe network? You said you had reachability, so I'd
assume it, but you might want to make sure.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Brandon"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> The addresses on the fast ethernet segment do not show up in the xlate
list
>
> ----- Original Message -----
> From: "Jason Roysdon"
> To:
> Sent: Monday, May 07, 2001 5:17 AM
> Subject: Re: PIX config question [7:3352] Attn: Jason [7:3352]
>
>
> > Correct on the nat question (for security reasons I wouldn't be that
> broad,
> > but I guess it doesn't hurt that much). What's a show xlate giving you?
> > Are the nodes you're testing with actually getting NAT xlates?
> >
> > --
> > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
> > List email: [EMAIL PROTECTED]
> > Homepage: http://jason.artoo.net/
> >
> >
> >
> > ""Brandon"" wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > Jason,
> > >
> > > Doesn't the statement "nat 1 0 0" take care of all internal networks?
> Do
> > I
> > > actually need to specify the subnet on the fast ethernet segment?
> > >
> > > ----- Original Message -----
> > > From: "Jason Roysdon"
> > > To:
> > > Sent: Sunday, May 06, 2001 12:04 PM
> > > Subject: Re: PIX config question [7:3352]
> > >
> > >
> > > > Do a 'show xlate local x.x.x.x' and search for a private IP on the
> > > > fastethernet segment.
> > > >
> > > > It sounds like your PIX 'nat (inside) #' is missing the network of
the
> > > > fastethernet segment.
> > > >
> > > > nat (inside) 1 192.168.1.0 255.255.255.0 0 0
> > > > nat (inside) 1 192.168.2.0 255.255.255.0 0 0
> > > >
> > > >
> > > > --
> > > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
> > > > List email: [EMAIL PROTECTED]
> > > > Homepage: http://jason.artoo.net/
> > > >
> > > >
> > > >
> > > > ""Brandon"" wrote in message
> > > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > > > Strange problem.......
> > > > > Here is the setup
> > > > > I have a PIX firewall directly connect to a token-ring ethernet
> > segment.
> > > > All
> > > > > users on this segment can reach the internet.(I am using
> NAT......(nat
> > 1
> > > 0
> > > > 0)
> > > > > I also have a fast ethernet segment connected to the token ring
> > segment
> > > by
> > > > a
> > > > > router.(NT server) I can ping the inside interface on the PIX from
> the
> > > > fast
> > > > > ethernet segment, however, no traffic passes through the PIX. (I
> have
> > a
> > > > route
> > > > > inside statement to the fast ethernet segment) What is going on?
> Why
> > > can
> > > > I
> > > > > not get to the internet though the PIX.
> > > > >
> > > > > Added notes.....
> > > > > No outbound security is setup
> > > > > PIX in running 5.1(2) software
> > > > > It is an older PIX...(PIX classic)
> > > > > FAQ, list archives, and subscription info:
> > > > http://www.groupstudy.com/list/cisco.html
> > > > > Report misconduct and Nondisclosure violations to
> [EMAIL PROTECTED]
> > > > FAQ, list archives, and subscription info:
> > > http://www.groupstudy.com/list/cisco.html
> > > > Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED]
> > > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=3523&t=3352
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
